Create an Account
username: password:
 
  MemeStreams Logo

Exploitation With WriteProcessMemory()

search
Home Agent Weblogs Social Network Post Help About

Security Reads
My Blog
My Profile
My Audience
My Sources
Send Me a Message

sponsored links

Security Reads's topics
Arts
Business
Games
Health and Wellness
Home and Garden
Miscellaneous
Current Events
Recreation
Local Information
Science
Society
Sports
Technology

support us

Get MemeStreams Stuff!


 
Exploitation With WriteProcessMemory()
Topic: Miscellaneous 3:01 pm EDT, Mar 31, 2010

This paper introduces yet another function to defeat Windows DEP. It is
assumed that the reader is already familiar with buffer overflows on x86,
and has a basic understanding of the DEP protection mechanism. The technique
discussed in this paper is aimed at Windows XP, however, it should also work
on other Windows versions given that the attacker has some way to find the
address of the DLL, such as through a memory disclosure, etc. This paper
does not address the issue of ASLR, rather it recognizes ASLR as a
completely separate problem. The method described here is not conceptually
groundbreaking, and is ultimately only as impressive as any other ret-2-lib
technique.

Exploitation With WriteProcessMemory()

Thread [1]


  
 
Powered By Industrial Memetics		RSS2.0